Re: bin/57124: pkg_add in 10.0_BETA prints "Unknown http error" when accessing NetBSD CDN over HTTPS

To: gnats-bugs%netbsd.org@localhost
Subject: Re: bin/57124: pkg_add in 10.0_BETA prints "Unknown http error" when accessing NetBSD CDN over HTTPS
From: Joerg Sonnenberger <joerg%bec.de@localhost>
Date: Wed, 21 Dec 2022 02:49:18 +0100

Am Tue, Dec 20, 2022 at 06:35:02PM +0000 schrieb Michael van Elst:
> The following reply was made to PR bin/57124; it has been noted by GNATS.
> 
> From: mlelstv%serpens.de@localhost (Michael van Elst)
> To: gnats-bugs%netbsd.org@localhost
> Cc: 
> Subject: Re: bin/57124: pkg_add in 10.0_BETA prints "Unknown http error" when accessing NetBSD CDN over HTTPS
> Date: Tue, 20 Dec 2022 18:30:58 -0000 (UTC)
> 
>  nia%pkgsrc.org@localhost writes:
>  
>  >pkg_add is struggling to load any packages from cdn.netbsd.org over
>  >HTTPS. This is likely caused by a deficiency in the embedded copy of
>  >libfetch that pkg_install users.
>  
>  libfetch in base doesn't know about SNI. I have a tiny patch for this,
>  but it might be better to update libfetch. It lacks other things and
>  also doesn't validate SSL certs.

Yeah, just importing the version from pkgsrc should do that. I haven't
commited SSL certificate validation because it would break every NetBSD
system...

Joerg

References:
- Re: bin/57124: pkg_add in 10.0_BETA prints "Unknown http error" when accessing NetBSD CDN over HTTPS
  - From: Michael van Elst

Prev by Date: Re: lib/57064 (Import OpenBSD's script to autogen Unicode ctype definition?)
Next by Date: Re: bin/57124: pkg_add in 10.0_BETA prints "Unknown http error" when accessing NetBSD CDN over HTTPS
Previous by Thread: Re: bin/57124: pkg_add in 10.0_BETA prints "Unknown http error" when accessing NetBSD CDN over HTTPS
Next by Thread: Re: bin/57124: pkg_add in 10.0_BETA prints "Unknown http error" when accessing NetBSD CDN over HTTPS
Indexes:

Home | Main Index | Thread Index | Old Index